Monitoring DNS Server with Microsoft Event Viewer
You can audit your AWS Managed Microsoft AD DNS events, making it easier to identify and troubleshoot DNS issues. For example, if a DNS record is missing, you can use the DNS audit event log to help identify the root cause and fix the issue. You can also use DNS audit event logs to improve security by detecting and blocking requests from suspicious IP addresses.
To do that, you must be logged on with the Admin account or with an account that is a member of the AWS Domain Name System Administrators group. For more information about this group, see What gets created with your AWS Managed Microsoft AD.
To access Event Viewer for your AWS Managed Microsoft AD DNS
- Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/ - . 
- 
      In the left navigation pane, choose Instances. 
- Locate an Amazon EC2 instance that is joined to your AWS Managed Microsoft AD directory. Select the instance and then choose Connect. 
- Once connected to the Amazon EC2 instance, open the Start menu and select the Windows Administrative Tools folder. Within the Administrative Tools folder, select Event Viewer. 
- In the Event Viewer window, choose Action and then choose Connect to Another Computer. 
- Select Another computer, type one of your AWS Managed Microsoft AD DNS servers name or IP address, and choose OK. 
- In the left pane, navigate to Applications and Services Logs>Microsoft>Windows>DNS-Server, and then select Audit.